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CLAIMS : 

7 l.\ A system for managing policy services in an 
organization, the organization including a first network having 
a first s^t of resources and a second network remote from the 
first network having a second set of resources, the system 
comprising : 

a fcirst edge device associated with the first network, 
the first edga device configured to manage policies for the first 
network and thk first set of resources in accordance with first 
policy settings\ stored in a first database; 

a second edge device associated with the second 
network, the second edge device configured to manage policies for 
the second network\and the second set of resources in accordance 
with second policy settings stored in a second database; and 

a central Aolicy server in communication with the first 
and second edge devices, the central policy server configured to 
define the first and Second' policy settings and monitor health 
and status of the firs\: and second edge devices from a single 
location . 
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2. The system of ^laim 1, wherein the central policy 
server includes: 

a log collecting aVid archiving module for periodically 
receiving health and status \inf ormation from each of the edge 
devices; 

an archive database ^coupled to the log collecting and 
archiving module for storing th\g health and status information; 
and 

a reports module coupldd to the archive database for 
creating reports based on the health and status information. 
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3\ The system of claim 2, wherein each edge device 
5ollect\s and transmits health and status information in a 
predefined common log format. 



4. \The system of claim 2, wherein the health and status 
10 information includes network flow information of packets flowing 
through the\edge device. 
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5. The\ system of claim 4, wherein the each edge device 
maintains a byte count of the packets flowing through the edge 
device, whereim the byte count is organized according to 
resources associated with the packets. 
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6. The system of claim 2, wherein the health and status 
information include^ statistics on use of each edge device's set 
of resources. 
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7. The system Af claim 6, wherein the reports indicate 
usage of the resources Associated with a particular edge device 
over a period of time. 

8. The system of &laim 2, wherein the central policy 
server further includes me^ns for determining when each of the 
edge devices is to transfer hjc\e health and status information to 
the log collecting and archiving module. 

9. In a system including a first network having a first 
set of resources and a second \network remote from the first 
network having a second set of resburces, the first network being 
associated with a first edge device and .a first database, and the 
second network being associated wiuh a second edge device and a 
second database, the system furtheA including a central policy 
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server in communication with the first and second edge devices, 
the \central policy server being associated with a central 
database, a method for managing policy services in the system 
comprising : 

storing configuration information of the first and 
second e\ige devices in the central database; 

storing first policy settings in the first database; 
toring second policy settings in the second database; 
naging policies for the first network and the first 
set of resources from the first edge device in accordance with 
the first pol^py settings stored in the first database; 

manaq^ng policies for the second network and the second 
set of resources\f rom the second edge device in accordance with 
the second policyYsettings stored in the second database; and 

defining\ the first and second policy settings and 
monitoring health anM status of the first and second edge devices 
from the central policy server, 



10. The method of\ claim 9, wherein the monitoring further 
comprises : 

25 periodically receiving health and status information 

from each of the edge devices; 

storing the healtl\and status information in an archive 
database; and 

creating reports Biased on the health and status 
30 information. 
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11. The method of claim \L0, wherein each edge device 
collects and transmits health ^nd status information in' a 
predefined common log format. 
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12. The method of claim 10, wherein the health and status 
information includes network flow information. 

^3. The method of claim 12, further comprising: 

maintaining a byte count of the packets flowing through 
the edg^ device; and 

organizing the byte count according to resources 
associate^ with the packets. 

14. The method of claim 10, wherein the health and status 
information \ncludes statistics on use of each edge device's set 
of resources, 

15. The method of claim 14, wherein the reports indicate 
usage of the resources associated with a particular edge device 
over a period of 
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of claim 10, wherein the monitoring further 
comprxses determining when each of the edge devices is to 
transfer the health dS[\d status information to the log collecting 
and archiving module. 
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